ePrints@IIScePrints@IISc Home | About | Browse | Latest Additions | Advanced Search | Contact | Help

NAG: Network for Adversary Generation

Mopuri, Konda Reddy and Ojha, Utkarsh and Garg, Utsav and Babu, R Venkatesh (2018) NAG: Network for Adversary Generation. In: 31st IEEE/CVF Conference on Computer Vision and Pattern Recognition (CVPR), JUN 18-23, 2018, Salt Lake City, UT, pp. 742-751.

[img] PDF
Iee_Cvf_Con_Vis_Pat_Rec_CVPR_742_2018.pdf - Published Version
Restricted to Registered users only
Download (1MB) | Request a copy
Official URL: https://doi.org/10.1109/CVPR.2018.00084

Abstract

Adversarial perturbations can pose a serious threat for deploying machine learning systems. Recent works have shown existence of image-agnostic perturbations that can fool classifiers over most natural images. Existing methods present optimization approaches that solve for a fooling objective with an imperceptibility constraint to craft the perturbations. However, for a given classifier, they generate one perturbation at a time, which is a single instance from the manifold of adversarial perturbations. Also, in order to build robust models, it is essential to explore the manifold of adversarial perturbations. In this paper, we propose for the first time, a generative approach to model the distribution of adversarial perturbations. The architecture of the proposed model is inspired from that of GANs and is trained using fooling and diversity objectives. Our trained generator network attempts to capture the distribution of adversarial perturbations for a given classifier and readily generates a wide variety of such perturbations. Our experimental evaluation demonstrates that perturbations crafted by our model (i) achieve state-of-the-art fooling rates, (ii) exhibit wide variety and (iii) deliver excellent cross model generalizability. Our work can be deemed as an important step in the process of inferring about the complex manifolds of adversarial perturbations.

Item Type: Conference Paper
Series.: IEEE Conference on Computer Vision and Pattern Recognition
Publisher: IEEE
Additional Information: 31st IEEE/CVF Conference on Computer Vision and Pattern Recognition (CVPR), Salt Lake City, UT, JUN 18-23, 2018
Department/Centre: Division of Interdisciplinary Sciences > Computational and Data Sciences
Date Deposited: 27 Feb 2019 09:27
Last Modified: 27 Feb 2019 09:27
URI: http://eprints.iisc.ac.in/id/eprint/61849

Actions (login required)

View Item View Item
Powered by EPrints A service from The J.R.D. Tata Memorial Library Indian Institute of Science, Bengaluru-560012, India